Our research focuses on cybersecurity challenges in national security, homeland security, and critical infrastructure protection and produces new ways to improve cybersecurity practice in private and public organizations.
We were there for the first internet security incident and we’re still here 25 years later. Only now, we’ve expanded our expertise from incident response to a comprehensive, proactive approach to securing networked systems. The CERT Division is part of the Software Engineering Institute, which is based at Carnegie Mellon University. We are the world’s leading trusted authority dedicated to improving the security and resilience of computer systems and networks and are a national asset in the field of cybersecurity.
An Insider Threat Indicator OntologyThis report presents an ontology for insider threat indicators, describes how the ontology was developed, and outlines the process by which it was validated.Technical Report - 05/10/2016
Using Honeynets and the Diamond Model for ICS Threat AnalysisThis report presents an approach to analyzing approximately 16 gigabytes of full packet capture data collected from an industrial control system honeynet—a network of seemingly vulnerable machines designed to lure attackers.Technical Report - 05/06/2016
NatCSIRT 2016At this event, organizations responsible for protecting the security of nations, economies, and critical infrastructures meet to discuss current issues, tools, and methods that are relevant to the National CSIRT community. Conferences - 06/17/2016
In this podcast, Gary McGraw, the Chief Technology Officer for Cigital, discusses the latest version of BSIMM and how to take advantage of observed practices from high-performing organizations.Podcast - 02/03/2016
In this podcast, Nader Mehravari and Julia Allen, members of the CERT Cyber Risk Management team, discuss an effective approach for defining a CISO team structure and functions for large, diverse organizations.Podcast - 12/23/2015
In this podcast, Chip Block, Vice President at Evolver, discusses the growth of the cyber insurance industry and how it is beginning to drive the way that organizations manage risk and invest in technologies.Podcast - 11/09/2015